Database Security Comprehensive Management System Based On Security Baseline

As the main carrier of data information,database plays an obviously important role in information security and information instruction in recent years.On the ground that database is the last end of IT architecture with relatively strong security measure of access control,the security management on database and bugs of front-end application program are generally ignored.In addition,with the frequently occurrence of various high-risk vulnerabilities in database such as permission abuse,exceeding authority use and SQL injection,building a more proactive security mechanisms of utmost urgency.Therefore,the Paper introduces the concept of security baseline and combines it with database security,and then the Paper builds a database security comprehensive management system based on the security baseline.Security baseline is called as the minimum security guarantee for business system,for it can reflect the system condition,vulnerability of system configuration and the existing bugs in a timely manner.Thus,security baseline is the precondition of effective evaluation on the security of system as well as the base for the management department making and adjusting security measures.The aim of combining security baseline and database security is to make out a security protection standard that can satisfy the security requirements of database,reflect the security condition of database and provide pertinent database security information,so as to create a new way in the field of database security.Through the analysis on the current database security status and demands,the Paper makes a deeper research on the database security monitoring management requirements of safe state,structural information,safe configuration parameter and bug intercept.The paper also divides the security baseline into such four aspects and do the analysis as database operating healthy baseline,database structure security baseline,database security configuration baseline and database security bug baseline,focusing on the different security monitoring requirements of security condition,structure information,security configuration parameter as well as bug checking and closing.On the foresaid base,the Paper constructs a full set of database security comprehensive monitoring system and designs all the important functional modules,including secure baseline module,vulnerability scanning module,security configuration checking module,security healthy monitoring module and security audit module.The design combines the security monitoring index with database security evaluation,security configuration,security monitoring and security audit technology,giving consideration to technology security index and service functional demands,which can effectively prevent and block front-end application bugs,achieving the full coverage of database security protection area.The Paper designs,achieves and verifies on the key modules of database security comprehensive monitoring system through the researches and the constructing the database security comprehensive management system based on the security baseline.As a result,a relatively wholesome security 3-dimension model,which includes the prior detection,progressing monitoring and post auditing on database system is formed,thus,the security management ability of database system is enhanced.Through the database security comprehensive management system based on the security baseline,risk monitoring and precaution on database security can be deployed,which provides theory basis and practice measures for database security monitoring,greatly reducing the system security cost.The research of this paper is of great importance of increasing the management level in the field of database security engineering,and is also of great importance of building security in the field of database.